The ISO 27001 & ISO 22301 Blog – 27001Academy

In a connected world where hundreds of transactions are made every minute, every second your systems are down or inaccessible may represent a significant impact on your organizations’ business. And, while prevention of infrastructure failures is an immediate and obvious concern for decision makers, a more subtle and insidious threat ...
(Visited 4 times, 1 visits today)
The post Can ISO 27001 help your organization in a DDoS attack? appeared first on 27001Academy.Read more

In a connected world where hundreds of transactions are made every minute, every second your systems are down or inaccessible may represent a significant impact on your organizations’ business. And, while prevention of infrastructure failures is an immediate and obvious concern for decision makers, a more subtle and insidious threat ...
The post Can ISO 27001 help your organization in a DDoS attack? appeared first on 27001Academy.Read more

A number of high-profile corporate and accounting scandals collapsed several big players like Enron and WorldCom, and played havoc on global investment market. In the wake of these scandals, U.S. SOX law was introduced to restore public confidence of financial information released by public organizations. The laws required new levels ...
(Visited 225 times, 1 visits today)
The post How can ISO 27001 help you comply with SOX section 404 appeared first on 27001Academy.Read more

Approaches and methods to successfully and sustainably run businesses are being rapidly developed. Recently, the term of Organizational Resilience was interpreted as being the new expression for the term Business Continuity. According to industry sources, based on recent ISO standardization work (ISO 22316:2017), Organizational Resilience is an all-encompassing concept that ...
The post Organizational Resilience – Positioning Against ISO 22301-Based Business Continuity appeared first on 27001Academy.Read more

Approaches and methods to successfully and sustainably run businesses are being rapidly developed. Recently, the term of Organizational Resilience was interpreted as being the new expression for the term Business Continuity. According to industry sources, based on recent ISO standardization work (ISO 22316:2017), Organizational Resilience is an all-encompassing concept that ...
The post Organizational Resilience – Positioning Against ISO 22301-Based Business Continuity appeared first on 27001Academy.Read more

Released at the beginning of April 2017 by BSI (the British Standards Institution), the standard BS EN ISO/IEC 27001:2017 is a corrigendum over previous standard BS ISO/IEC 27001:2013. It has raised some concern among organizations with Information Security Management Systems certified against ISO 27001, the leading ISO standard for information ...
The post European 2017 Revision of ISO/IEC 27001: What has changed? appeared first on 27001Academy.Read more

Released at the beginning of April 2017 by BSI (the British Standards Institution), the standard BS EN ISO/IEC 27001:2017 is a corrigendum over previous standard BS ISO/IEC 27001:2013. It has raised some concern among organizations with Information Security Management Systems certified against ISO 27001, the leading ISO standard for information ...
The post European 2017 Revision of ISO/IEC 27001: What has changed? appeared first on 27001Academy.Read more

To focus on their core business, many organizations rely on outsourced suppliers to perform support processes. While this approach may bring benefits like costs savings, and access to expert knowledge and state-of-the-art technology, it can also involve risks related to loss of control over how these processes are performed and ...
The post How to perform an ISO 27001 second-party audit of an outsourced supplier appeared first on 27001Academy.Read more

The European Council Directive 2008/114/EC of December 8, 2008, is a European Directive for the identification and designation of critical European infrastructures and the assessment of the need to improve their protection. It states: Critical infrastructure means an asset, system or part thereof … which is essential for the maintenance ...
The post How can ISO 27001 and ISO 22301 help with critical infrastructure protection? appeared first on 27001Academy.Read more

In the Internet environment, big, medium, and small businesses all face similar risks, and many regulatory demands enforce information protection, but differences in resources and knowledge often result in data breaches because of the failure to implement basic security measures. To help handle such situations, the government in the United ...
The post ISO 27001 vs. Cyber Essentials: Similarities and differences appeared first on 27001Academy.Read more